Washington (AFP)
The huge amount that Facebook recently agreed to end a dispute over the use of facial recognition is considered by several specialists to be a pivotal moment for the security of biometric data.
The number one of the social networks agreed Wednesday to pay 550 million dollars after having failed to obtain a dismissal in a legal procedure where he was accused of having illegally collected biometric data to "identify faces", in violation of an Illinois privacy law from 2008.
This regulation could have multiple consequences for Facebook and other Silicon Valley giants using facial recognition technologies. It also highlights the ability of local laws to change certain practices in the area of privacy.
Counsel for the complainant Jay Edelson considered that the procedure had provided arguments in favor of biometric security and the right of users of technological products and services to control their access to facial recognition.
"Biometric is one of the two main battlegrounds, along with geolocation, which will define the privacy rights of the next generation," said Edelson in a statement. "We hope and expect that other companies will follow Facebook's example and pay more attention to the importance of biometric data," he added.
According to lawyer Nathan Wessler of the powerful civil rights association ACLU, who supported the plaintiffs' arguments, the settlement could mark a turning point for consumers. "Businesses will have to take this matter seriously," said Wessler. "Let us hope that a regulation of this magnitude will be dissuasive enough".
The amount is one of the largest ever for a privacy case in the United States. Only the agreement for some $ 5 billion between Facebook and the agency responsible for consumer protection and competition (FTC), for a data management case, comes before.
Both payments have yet to receive court approval.
- A popular method -
Facial recognition is increasingly used by police forces and customs agents around the world, but also to "identify" people on social networks or unlock smartphones and cars.
Several American cities, including San Francisco, have voted bans on the use of facial recognition technologies, citing fears that building large databases will lead to mistakes in identifying certain people.
Illinois law does not apply to government entities or employees. At least two other US states have similar laws, but Illinois is the only one to allow individuals to sue for damages when companies collect data without asking permission.
Alan Butler of the Electronic Privacy Information Center, who also supported the complainants, called the regulations "extremely important". According to Mr. Butler, the judges decided that the case could be brought before the courts on the simple basis of a demonstration of a violation of privacy, but without proof of specific damages being required.
- Negative effects? -
However, Illinois law and other similar restrictions could have negative effects, according to Daniel Castro, of the Information Technology and Innovation Foundation, a technology research institute.
The possibility of suing without having to prove damage has given rise to an avalanche of lawsuits, which has led some companies "to interrupt their services in Illinois to avoid the risk of a fine. ", believes Mr. Castro. "At the same time, there is not much to address specific concerns, such as the use of facial recognition by the police to track citizens," he said.
The Facebook-accepted settlement comes at a time when U.S. lawmakers are considering federal privacy legislation, which could take precedence over laws like the one in Illinois. "The worst outcome would be a weak federal law which does not allow private procedures and which would relegate local laws to the background, even if that is what the industry wants," Wessler said.
© 2020 AFP